cbcvebase.
CVE-2023-42791
published 2024-02-20

CVE-2023-42791: A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0.0 through 7.0.8 and 6.4.0 through 6.4.12 and 6.2.0 through…

PriorityP261high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
4.18%
89.7th percentile
A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0.0 through 7.0.8 and 6.4.0 through 6.4.12 and 6.2.0 through 6.2.11 allows attacker to execute unauthorized code or commands via crafted HTTP requests.

Affected

16 ranges
VendorProductVersion rangeFixed in
fortinetfortianalyzer
fortinetfortianalyzer6.2.0 – 6.2.11
fortinetfortianalyzer6.4.0 – 6.4.12
fortinetfortianalyzer7.0.0 – 7.0.8
fortinetfortianalyzer7.2.0 – 7.2.3
fortinetfortimanager
fortinetfortimanager
fortinetfortimanager>= 6.2.0 < 6.2.126.2.12
fortinetfortimanager6.2.0 – 6.2.11
fortinetfortimanager>= 6.4.0 < 6.4.136.4.13
fortinetfortimanager6.4.0 – 6.4.12
fortinetfortimanager>= 7.0.0 < 7.0.97.0.9
fortinetfortimanager7.0.0 – 7.0.8
fortinetfortimanager>= 7.2.0 < 7.2.47.2.4
fortinetfortimanager7.2.0 – 7.2.3
fortinetfortinet

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability class is relative path traversal (CWE-23) combined with unrestricted file upload (CWE-22) in FortiManager; monitor for crafted HTTP requests containing path traversal sequences (e.g., '../') targeting FortiManager endpoints
  • The attack vector is HTTP; inspect HTTP requests to FortiManager for path traversal patterns in file upload functionality, particularly requests that attempt to write files outside intended directories
  • ·Affected FortiManager versions span a wide range across multiple major branches; ensure version checks cover all listed branches: 7.4.0, 7.2.0–7.2.3, 7.0.0–7.0.8, 6.4.0–6.4.12, and 6.2.0–6.2.11
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.